ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your organization follows the NIST Risk Management Framework (RMF) for a newly migrated e-commerce workload on AWS. After implementing and authorizing all selected controls, you must now address the RMF "Monitor" step, which calls for continuous assessment of control effectiveness and automated risk reporting. Which AWS solution best fulfills this requirement by running compliance checks against industry standards and aggregating findings in a single dashboard?
Activate Amazon GuardDuty across all accounts and regions to detect threats in real time.
Use Amazon Macie to scan S3 buckets and alert on sensitive data exposure.
Deploy AWS Config conformance packs and ingest their findings into AWS Security Hub for centralized compliance monitoring.
Enable AWS CloudTrail and store logs in Amazon S3, then run ad-hoc Athena queries for control verification.
The RMF Monitor step requires ongoing control assessments and timely risk reporting. AWS Config conformance packs continuously evaluate resource configurations against predefined rule sets, while AWS Security Hub consumes the resulting findings, correlates them with other AWS service detections, and displays consolidated compliance scores mapped to frameworks such as NIST CSF, PCI DSS, and CIS. This combination delivers the automated, centralized monitoring expected by the RMF. CloudTrail with S3 logs, GuardDuty alone, or Macie alone provide valuable security data but do not automatically compare configurations against control baselines or generate framework-aligned compliance reports.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the NIST Risk Management Framework (RMF)?
Open an interactive chat with Bash
What are AWS Config conformance packs?
Open an interactive chat with Bash
How does AWS Security Hub aid in compliance monitoring?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Risk Identification, Monitoring and Analysis
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .